[SECURITY] [DLA 1293-1] imagemagick security update

To: debian-lts-announce@lists.debian.org
Subject: [SECURITY] [DLA 1293-1] imagemagick security update
From: Chris Lamb <lamby@debian.org>
Date: Sun, 25 Feb 2018 09:29:46 +0000
Message-id: <[🔎] 1519550986.1669505.1282513072.52563E41@webmail.messagingengine.com>
Mail-followup-to: debian-lts@lists.debian.org
Reply-to: debian-lts@lists.debian.org

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Package        : imagemagick
Version        : 8:6.7.7.10-5+deb7u21
CVE ID         : CVE-2018-7443
Debian Bug     : #891291

It was discovered that there was a remote denial of service
vulnerability in the imagemagick graphics library via a specially-
crafted TIFF file.

For Debian 7 "Wheezy", this issue has been fixed in imagemagick
version 8:6.7.7.10-5+deb7u21.

We recommend that you upgrade your imagemagick packages.


Regards,

- -- 
      ,''`.
     : :'  :     Chris Lamb
     `. `'`      lamby@debian.org / chris-lamb.co.uk
       `-

-----BEGIN PGP SIGNATURE-----

iQIzBAEBCAAdFiEEwv5L0nHBObhsUz5GHpU+J9QxHlgFAlqSeb4ACgkQHpU+J9Qx
Hlg+dg//YcQ5krR7nMTqfR5qckerlsK1Mq7NoHETPVmzFwCO9dy2SrrOaqZTCT+Z
mSnhM51chZJASUGsNyard1S0opL2IDflDORsVjJoN6j649ytNfmCTTjrYAAp1tRJ
xsHwBTSs1/cILafdhCRtTeQDrCarkJfScv6BN3qmuKET2SXfVi9Y9Cvb4OWMtcEq
5/YxHPAwCsQL7KAd/XN23fdXQ9u0xY6WD9MZPW1mDZ/ZWppvhtcrbzJOMP1PLVJ5
4UiAm8A/qcLTqb3efEHU/rojylkROjb0VWgASfERjkSFB6XVoleoCHy4JfM//6dY
NFAmhJh+KI5IhLUYJHgiLQikaqyy2bOsT0lu0b7wcsSeeYQXcVRjViDN+sz9sbJp
7iv0pKMt0b1ekUPJoWDKvNU4+1hm2vN1EKpTilM2SO5h9qp2hw0Rvlc9uNKfR7EY
qH6HWelk3oAhVdrh3KaKDaRe0qZHiaCBYQEVrIVBlm5hf/KNz2/dThbJXDJlH4HL
b9smIZwaBljP9Q6qDz894HOxnPsTW5TFqk5wZnfq0vtEC0WXZQoeH6VDq5svvSUo
F2Owbx8i68YqeGVDAJo5Sn6sSQpGVpB32iUDRKbe+kuPg2EhBPnW6oZ7mLrThmN0
3A9tz3rdpbavD7kXRRBJWiiZViSqdWBykQye00I8lJ2uVpLuR/Y=
=xf1K
-----END PGP SIGNATURE-----

Reply to:

Prev by Date: [SECURITY] [DLA 1292-1] libdatetime-timezone-perl new upstream version
Next by Date: [SECURITY] [DLA 1294-1] golang security update
Previous by thread: [SECURITY] [DLA 1292-1] libdatetime-timezone-perl new upstream version
Next by thread: [SECURITY] [DLA 1294-1] golang security update
Index(es):
- Date
- Thread